While most applications are aware of the minimum basic security features and use them, there is often a lack of understanding about how best to manage them, especially with major security features being released with every major version of Postgres. As for advanced features, sadly most of them go unnoticed and unused in most cases. I will also discuss recommended monitoring to ensure security implementations set up are working as intended, especially with PCI.